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1 A fine-grained access control system for XML documents 

Ernesto Damiani, Sabrina De Capitani di Vimercati, Stefano Paraboschi, Pierangela Samarati 
May 2002 ACM Transactions on Information and System Security (TISSEC), volume 5 

Issue 2 
Publisher: ACM Press 

Additional Information: full citation , abstract , references , citings, index 
terms 



Full text available: ^ Ddf( 330.60 KB ) 



Web-based applications greatly increase information availability and ease of access, which 
is optimal for public information. The distribution and sharing of information via the Web 
that must be accessed in a selective way, such as electronic commerce transactions, 
require the definition and enforcement of security controls, ensuring that information will 
be accessible only to authorized entities. Different approaches have been proposed that 
address the problem of protecting information in a Web ... 



Keywords: Access control, World Wide Web, XML documents, authorizations specification 
and enforcement 



2 X-GTRBAC: an XML-based policy specification framework and architecture for |J 
^ enterprise-wide access control 

^ Rafae Bhatti, Arif Ghafoor, Elisa Bertino, James B. D. Joshi 

May 2005 ACM Transactions on Information and System Security (TISSEC), volume 8 

Issue 2 
Publisher: ACM Press 
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Modern day enterprises exhibit a growing trend toward adoption of enterprise computing 
services for efficient resource utilization, scalability, and flexibility. These environments 
are characterized by heterogeneous, distributed computing systems exchanging enormous 
volumes of time-critical data with varying levels of access control in a dynamic business 
environment. The enterprises are thus faced with significant challenges as they endeavor 
to achieve their primary goals, and simultaneously ens ... 
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November 2006 Proceedings of the 3rd ACM workshop on Secure web services SWS 
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Publisher: ACM Press 

Full text available: ^| pdf( 251.09 KB ) Additional Information: full citation , abstract , references , index terms 

Current regulatory requirements in the U.S. and other countries make it increasingly 
important for Web Services to be able to enforce and verify their compliance with privacy 
policies. Structured policy languages can play a major role by supporting automated 
enforcement of policies and auditing of access decisions. This paper compares two policy 
languages that have been developed for use in expressing directly enforceable privacy 
policies — the Enterprise Privacy Authorization Language (EPAL) a ... 

Keywords: EPAL, XACML, policy language, privacy policy 



Principled desi g n of the modern Web architecture | 
Roy T. Fielding, Richard N. Taylor 

May 2002 ACM Transactions on Internet Technology (TOIT), volume 2 issue 2 
Publisher: ACM Press 
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Full text available: TO pdf(335.47 KB) — 

terms 

The World Wide Web has succeeded in large part because its software architecture has 
been designed to meet the needs of an Internet-scale distributed hypermedia application. 
The modern Web architecture emphasizes scalability of component interactions, generality 
of interfaces, independent deployment of components, and intermediary components to 
reduce interaction latency, enforce security, and encapsulate legacy systems. In this 
article we introduce the Representational State Transfer (REST) arc ... 

Keywords: Network-based applications, REST, World Wide Web 



5 Hy pertext versioning: H y pertext versionin g for embedded link models 
Kai Pan, E. James Whitehead, Guozheng Ge 

August 2004 Proceedings of the fifteenth ACM conference on Hypertext and 
hypermedia HYPERTEXT '04 

Publisher: ACM Press 

Full text available: Q pdf(215.33 KB) Additional Information: full citation , abstract , references , index terms 

In this paper, we describe Chrysant, a hypertext version control system for embedded link 
models. Chrysant provides general-purpose versioning capability to hypertext systems 
with an embedded link model. To apply Chrysant for a specific hypertext system, we 
require the containment model for this system's data model, the containment model of 
the version repository for this system, the hypertext role definition, the versioning role 
definition, and the filesystem mapping definition. Additionally, a ... 

Keywords: HTML versioning, SCM, containment model, hypertext versioning, link 
versioning, structure versioning, version control system 




6 Aerospace and military a p plications: simulation in aerospace I: hardware and man in Q 
the loop: Using simulation for launch team trainin g and evaluation 
Cary j. Peaden 

December 2005 Proceedings of the 37th conference on Winter simulation WSC '05 
Publisher: Winter Simulation Conference 

Full text available: ^|pdf( 1.03 MB ) Additional Information: full citation , abstract , references 

This paper describes some of the history and uses of simulation systems and processes 
for the National Aeronautics and Space Administration's (NASA's) training and evaluation 
of launch, mission control, and mission management teams. It documents some of the 
types of simulations that are used at Kennedy Space Center (KSC) today. It provides an 
initial baseline and some recommendations for further research into simulation for launch 
team training and evaluation in the near future. A theme of this ... 
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The <bi gwig> project 

Claus Brabrand, Anders Moller, Michael I. Schwartzbach 

May 2002 ACM Transactions on Internet Technology (TOIT), volume 2 issue 2 
Publisher: ACM Press 
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Full text available:™ pjdf(5A6J33JKB) — 

~ terms 

We present the results of the <bigwig> project, which aims to design and implement a 
high-level domain-specific language for programming interactive Web services. 

A fundamental aspect of the development of the World Wide Web during the last decade 
is the gradual change from static to dynamic generation of Web pages. Generating Web 
pages dynamically in dialog with the client has the advantage of providing up-to-date and 
tailor-made information. The development of systems ... 

Keywords: Interactive Web services, program analysis 



8 Ob j ect lessons learned from a distributed system for remote buildin g monitorin g and 
<g> o peration 

^ Frank Olken, Hans-Arno Jacobsen, Chuck McParland, Mary Ann Piette, Mary F. Anderson 
October 1998 ACM SIGPLAN Notices , Proceedings of the 13th ACM SIGPLAN 

conference on Object-oriented programming, systems, languages, and 

applications OOPSLA '98, Volume 33 issue 10 
Publisher: ACM Press 
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Full text available: to pdf 1.54 MB ) * 
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In this paper we describe our experiences with the design, the deployment, and the initial 
operation of a distributed system for the remote monitoring and operation of multiple 
heterogeneous commercial buildings across the Internet from a single control center. 
Such systems can significantly reduce building energy usage. Our system is distinguished 
by its ability to interface to multiple heterogeneous legacy building Energy Management 
Control Systems (EMCSs), its use of the Common Object Request ... 

9 Software Deplo yment . Past. Present and Future 
Alan Dearie 

May 2007 2007 Future of Software Engineering FOSE '07 
Publisher: IEEE Computer Society 

Full text available:^] pdf( 390.24 KB ) Additional Information: full citation , abstract 

This paper examines the dimensions influencing the past and present and speculates on 
the future of software deployment. Software deployment is a postproduction activity that 
is performed for or by the customer of a piece of software. Today's software often 
consists of a large number of components each offering and requiring services of other 
components. Such components are often deployed into distributed, heterogeneous 
environments adding to the complexity of software deployment. This paper set ... 

10 A knowledge-based electronic information and documentation system 
Robert L. Young, Elaine Kant, Larry A. Akers 

January 2000 Proceedings of the 5th international conference on Intelligent user 
interfaces IUI 'OO 

Publisher: ACM Press 

Full text available- fi3 Ddf(795 61 KB) Additional Information: full citation , abstra c t , refer e nc es, citin gs, index 
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We describe the capabilities of a knowledge-based system to automatically generate a 
collection of electronic notebooks containing various forms of online documentation and 
reports. This system is a subsystem of a larger knowledge-based system called SciNapse. 
ScilMapse's raison d'etre is to transform high-level simulation problem specifications into 



http://portal.acm.org/resu^ 



8/20/07 



Results (page 1 ): HTML referencing controls Page 4 of 6 

executable numerical programs. The electronic notebooks are generated from the same 
domain knowledge bases that the system uses to perform its ... 

Keywords: intelligent interfaces, knowledg-based systems 

11 Ap plications: Usin g VRML to share large volumes of complex 3D g eoscientific Q 
information via the Web 
David Beard 

April 2006 Proceedings of the eleventh international conference on 3D web 
technology Web3D '06 

Publisher: ACM Press 

Full text available:^ pdf( 235.01 KB ) Additional Information: full citation , abstract , references , index terms 

Scientists within Geoscience Australia (GA) create complex 3D models of geological 
structures, using specialised 3D modelling software. Very few people outside GA have 
access to this specialised software. To provide clients and stakeholders with access to 3D 
information GA has developed VRML-HTML-JavaScript interfaces. These interfaces allow 
GA to share large volumes of complex 3D geological information via the Web, with data 
volumes up to 22 MB. A number of methods are employed to allow users t ... 

Keywords: Geoscience, HTML, JavaScript, VRML, Web 3D 

12 Policy mana g ement: A posteriori compliance control B 
Sandro Etalle, William H. Winsborough 

June 2007 Proceedings of the 12th ACM symposium on Access control models and 
technologies SACMAT '07 

Publisher: ACM Press 

Full text available: Qpdf( 288.11 KB ) Additional Information: full citation , abstract , references , index terms 

While preventative policy enforcement mechanisms can provide theoretical guarantees 
that policy is correctly enforced, they have limitations in practice. They are inflexible when 
unanticipated circumstances arise, and most are either inflexible with respect to the 
policies they can enforce or incapable of continuing to enforce policies on data objects as 
they move from one system to another. In this paper we propose an approach to 
enforcing policies not by preventing unauthorized use, but rat ... 

Keywords: access control, policy enforcement, trust management 

13 Versi ons and standards of HTML Q 
Dennis J. Bouvier 

October 1995 ACM SIGAPP Applied Computing Review, volume 3 issue 2 
Publisher: ACM Press 

Full text available: Qpdf(520.41 KB ) Additional Information: full cit at ion, abst ract, i n d ex terms 

In the brief history of the World Wide Web (WWW), much has changed. Millions of web 
pages have been published in a relatively short time. Next to the Web content, the one of 
the most dynamic aspects of the WWW is the development of HyperText Markup 
Language (HTML). This paper explores the various versions of HTML and gives a status 
report on HTML standards development. A discussion of possible future trends is also 
included. 

Keywords: HTML, WWW, hypertext, markup 

14 Admission control and resource reservation on the internet j|j 
^ Christian Vogt 

May 2002 ACM SIGSOFT Software Engineering Notes, volume 27 issue 3 
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Publisher: ACM Press 

Full text available: ^|pdf( 1.03 MB ) Additional Information: full citation , abstract , references 

Software engineers used to have a hard time developing real-time and interactive Web 
applications, Most of such software requires high and stable throughput, a prerequisite 
which the Internet's best-effort service does not provide. Hence, a large body of effort has 
recently gone, and is currently going, into modifications to the Internet architecture. 
Software engineers should closely monitor this research, and leverage new technologies 
to build applications that get the most from the Web.This s ... 

Keywords: Common Open Policy Service (COPS), DiffServ, IntServ, Resource 
Reservation Protocol (RSVP), Subnet Bandwidth Manager (SBM), endpoint admission 
control, measurement-based admission control, parameter-based admission control 



15 A spectrum of TCP-friendly window-based congestion control algorithms 
Shudong Jin, Liang Guo, Ibrahim Matta, Azer Bestavros 
June 2003 IEEE/ ACM Transactions on Networking (TON), volume n issue 3 

Publisher: IEEE Press 

Full text available* 15| pdf(1 21 MB) Additional Information: full citation , abstract , references , citings, index 
" ' terms 

The increasing diversity of Internet application requirements has spurred recent interest 
in transport protocols with flexible transmission controls. In window-based congestion 
control schemes, increase rules determine how to probe available bandwidth, whereas 
decrease rules determine how to back off when losses due to congestion are detected. 
The control rules are parameterized so as to ensure that the resulting protocol is TCP- 
friendly in terms of the relationship between throughput and loss r ... 

Keywords: TCP-compatibility, TCP-friendliness, congestion control, fairness, transient 
behavior 



16 QQPSLA practitioner reports chair's welcome: 00 techniques applied to a real-time. Q 
embedde d, s paceborne a p plication 
Alexander T. Murray, Mohammad Shahabuddin 

October 2006 Companion to the 21st ACM SIGPLAN conference on Object-oriented 
programming systems, languages, and applications OOPSLA '06 

Publisher: ACM Press 

Full text available: ^ pdf(51Q.33 KB) Additional Information: full citation , abstract , references , index terms 

Though Object-Oriented Analysis, Design, and languages have become the dominant 
practices in many, or most, domains of software engineering, concerns about complexity, 
size, and performance in the embedded, real-time software domain have led to a 
prevalent view that 00 technology is not suitable for the domain. We challenge this view 
through a successful application of OOA, OOD, and C++ (including STL) in the embedded, 
real-time flight software in an Earth-orbiting science instrument named Aquar ... 

Keywords: C++, embedded, object-oriented analysis, object-oriented design, real-time, 
unified modeling language, use case 




17 Principled desi g n of the modern Web arc hitecture 
gjv Roy T. Fielding, Richard N. Taylor 

June 2000 Proceedings of the 22nd international conference on Software 

engineering ICSE '00 
Publisher: ACM Press 

Full text available* f*] pdf(21 7 34 KB) Ac,d ' tional Information: full citation , abstract , references , citings, index 
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The World Wide Web has succeeded in large part because its software architecture has 
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been designed to meet the needs of an Internet-scale distributed hypermedia system. The 
modern Web architecture emphasizes scalability of component interactions, generality of 
interfaces, independent deployment of components, and intermediary components to 
reduce interaction latency, enforce security, and encapsulate legacy systems. In this 
paper, we introduce the Representational State Tra ... 

Keywords: WWW, software architectural style, software architecture 



18 The UCO N AEC usa g e control model 
Jaehong Park, Ravi Sandhu 

February 2004 ACM Transactions on Information and System Security (TISSEC), volume 



7 Issue 1 
Publisher: ACM Press 

Full text available* 1j5 pdf(51 8 61 KB) Additional Information: full citation , abstract , references , citing s, index 

terms 

In this paper, we introduce the family of UCON ABC models for usage control (UCON), 

which integrate Authorizations (A), oBligations (B), and Conditions (C). We call these core 
models because they address the essence of UCON, leaving administration, delegation, 
and other important but second-order issues for later work. The term usage control is a 
generalization of access control to cover authorizations, obligations, conditions, continuity 
(ongoing controls), and mutability. Trad ... 

Keywords: access control, digital rights management, privacy, trust, usage control 



19 Modeling, eval uation , and testin g of paradyn instrumentation system Q k 
Abdul Waheed, Diane T. Rover, Jeffrey K. Hollingsworth 

November 1996 Proceedings of the 1996 ACM/IEEE conference on Supercomputing 
(CDROM) Supercomputing '96 

Publisher: IEEE Computer Society 

Full text available 1 f"l Ddf{225 73 KB) Additional Information: full citation , abstract , references , citings , index 
u xvi .-[£|-P~~A , terms 

This paper presents a case study of modeling, evaluating, and testing the data collection 
services (called an instrumentation system) of the Paradyn parallel performance 
measurement tool using well-known performance evaluation and experiment design 
techniques. The overall objective of the study is to use modeling- and simulation-based 
evaluation to provide feedback to the tool developers to help them choose system 
configurations and task scheduling policies that can significantly reduce the ... 

20 Eng ineerin g flexible World Wide Web services Q 
^ Markus W. Schranz 

V 7 February 1998 Proceedings of the 1998 ACM symposium on Applied Computing SAC 
'98 

Publisher: ACM Press 

Full text available: *g[pdf( 709.22 KB ) Additional Information: full citation , references , citing s, index terms 
Keywords: WWW service engineering, Web service management, flexible Web services 
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